...
The individual performing this installation has some Linux experience.
Root level server access.
Nmap 6, Apache 2, MySQL 5, PHP 5.2, PHP extensions MB_String and PHP_SNMP.
...
Pre-requisites are installed as per the RedHat/Centos or Debian/Ubuntu guides.
NOTE - This guide is for a new install of Open-AudIT. If you wish to upgrade an existing installation, see the upgrade guide.
You should be able to determine the IP Address of your Open-AudIT server via the following command:
| Code Block | ||
|---|---|---|
| ||
ifconfig | grep -Eo 'inet (addr:)?([0-9]*\.){3}[0-9]*' | grep -Eo '([0-9]*\.){3}[0-9]*' | grep -v '127.0.0.1' |
This will be required later, so make a note of it now.
Installation Steps
All local commands should be run as root.
Copy the OAE tarball to the server (a tarball is a GZIP'd tar file, e.g. OAE-Linux-x86_64-1.0.4.tar.gz).
You may need to use SCP or FTP to get the file onto the server.
The file will now likely be in the users home directory.
Change into the /usr/local directory.
...
| Code Block | ||
|---|---|---|
| ||
chown -R root:root omk chmod -R 775 omk chown -R root:www-data /usr/local/open-audit chmod -R 770 /usr/local/open-audit chmod -R 777 /usr/local/open-audit/code_igniter/application/views/lang/ chmod 770 /usr/local/open-audit/other/audit_linux.sh chmod 770 /usr/local/open-audit/other/audit_subnet.sh chmod 660 /usr/local/open-audit/other/open-audit.log |
Change into the /usr/local/omk directory.
...
Edit the "openauditenterprise" section and insert the actual ip address of the server (not 127.0.0.1 or localhost) in to the oae_server variable (along with http:// and don't forget the trailing /). If you have Open-AudIT installed into a sub directory in your web root, be sure to add that to the end of the oae_server variable above. For our virtual appliance it would be http://<SERVER_IP>/open-audit/
Change Optional - change and note the oae_username and oae_password values.
The email section is described in the Open-AudIT Enterprise - Configuration Guide document.
Create the nmis user.
| Code Block | ||
|---|---|---|
| ||
useradd nmis |
Start the daemon.
| Code Block | ||
|---|---|---|
| ||
service omkd start |
Test the Daemon
You should now be able to point a web browser at http://SERVER:4082/omk/oae
Edit the file /usr/local/omk/install/04omk-proxy.conf and insert the ip address of the server into the relevant "location" sections (replacing <SERVER>). You should be able to determine the ip address of the server by running the below command. Make sure you don't use 127.0.0.1.
| Code Block | ||
|---|---|---|
| ||
ifconfig | grep "inet addr"nano /usr/local/omk/install/04omk-proxy.conf |
Copy the apache config file to the correct location and restart apache.
For Debian / Ubuntu:
| Code Block | ||
|---|---|---|
| ||
cp /usr/local/omk/install/04omk-proxy.conf /etc/apache2/conf.d/ service apache2 restart |
...
| Code Block | ||
|---|---|---|
| ||
cp /usr/local/omk/install/04omk-proxy.conf /etc/httpd/conf.d/ service httpd restart |
Create the Open-AudIT User
Log in to Open-AudIT and create a user for Open-AudIT Enterprise.
Admin -> Users -> Add User.
Username should be the same as noted in opCommon.nmis (openauditenterprise -> oae_username).
Password should be the same as noted in opCommon.nmis (openauditenterprise -> oae_password).
Full Name should be "Open-AudIT Enterprise".
SAM Access Level should be "No Access".
User is Admin should not be ticked.
The only group this user needs access to is the "All Devices" group. Access level should be "List View Only".
Set the Open-AudIT config details
Copy the required files into the webroot
For Debian / Ubuntu
| Code Block | ||
|---|---|---|
| ||
cp -r /usr/local/open-audit/www/* /var/www/
chown -R root:www-data /var/www
chmod -R 755 /var/www |
For RedHat / CentOS
| Code Block | ||
|---|---|---|
| ||
cp -r /usr/local/open-audit/www/* /var/www/html/
chown -R root:apache /var/www/html
chmod -R 755 /var/www/html |
Ensure index.php is pointed at the correct location.
Edit /var/www/index.php (for Debian/Ubuntu) or /var/www/html/index.php (for RedHat/CentOS) and check the lines that specify the $system_path and $application_folder. There are two lines for each variable. Ensure the windows paths are commented out by placing a # at the start of the line. The linux paths should correspond to /usr/local/open-audit/code_igniter/ (system or application).
Remove the unrequired index.html file from the webroot.
For Debian / Ubuntu
rm /var/www/index.html
For RedHat / CentOS
rm /var/www/html/index.php
If you have not already, set the root password for MySQL.
If you have set the password, the following steps will make use of it.
In the below commands, replace PASSWORD (only the PASSWORD containing all capital letters) with a suitable password of your choosing.
| Code Block | ||
|---|---|---|
| ||
mysql -u root -e "USE mysql; UPDATE user set Password = password('PASSWORD') WHERE User = 'root'; FLUSH PRIVILEGES;" |
Create the Open-AudIT database and the database user used by the application.
| Code Block | ||
|---|---|---|
| ||
mysql -u root -pPASSWORD -e "CREATE DATABASE openaudit;"
mysql -u root -pPASSWORD -e "CREATE USER openaudit@localhost IDENTIFIED BY 'openauditpassword';"
mysql -u root -pPASSWORD -e "GRANT ALL PRIVILEGES ON openaudit.* TO openaudit@localhost IDENTIFIED BY 'openauditpassword';"
mysql -u root -pPASSWORD -e "FLUSH PRIVILEGES;" |
Insert the database schema
mysql -u root -pPASSWORD openaudit < /usr/local/open-audit/other/openaudit_mysql.sql
Set some configuration items. NOTE - replace IPADDRESS with your actual IP Address as obtained at the start of this document. Setting In Open-AudIT go to Admin -> Config.
Edit the "maps_url", "nmis_url" and "oae_url" fields to be the actual ip address of the server, not localhost.
These fields usually look something like -
maps_url: http://<server>/omk/oae/map
nmis_url: http://<server>/cgi-nmis8/nmiscgi.pl
oae_url: http://<server>/omk/oae/
Setting these details will activate the icon links in the header of Open-AudIT. These fields can also contain relative URL's, thus /omk/oae/map for a link to Maps for Open-AudIT on the same server. Links containing a port number must contain a full URL at this stage.
| Code Block | ||
|---|---|---|
| ||
mysql -u root -popenauditrootuserpassword -e "USE openaudit; DELETE FROM oa_config WHERE config_name = 'maps_url'; INSERT INTO oa_config (config_name, config_value, config_editable, config_description) VALUES ('maps_url', 'http://IPADDRESS/omk/oae/map', 'y', 'The web server address of Maps for Open-AudIT Enterprise.');"
mysql -u root -popenauditrootuserpassword -e "USE openaudit; DELETE FROM oa_config WHERE config_name = 'oae_url'; INSERT INTO oa_config (config_name, config_value, config_editable, config_description) VALUES ('oae_url', 'http://IPADDRESS/omk/oae', 'y', 'The web server address of Open-AudIT Enterprise.');" |
Test the website
You should now be able to access the web page at http://IPADDRESS/index.php Assuming you can, proceed to the next section.
Enter Your License
Go to the URL http://<server>/omk/oae/
Enter the default credentials of nmis and nm1888.
Click the "View and enter licenses" button.
Click "Enter a license key".
Paste your license key text into the text box and click "Add License".
You should see a message at the top of the screen saying "Success: You have added a license for Open-AudIT Enterprise."
Close the browser tab.
Click the "License Entered, Continue" button.
Accept the End User License Agreement.
You should now see the Open-AudIT Enterprise dashboard.
Log in to Open-AudIT Enterprise
Go to the URL http://<server>IPADDRESS/omk/oae
Log in to Open-AudIT
Go to the URL http://<server>IPADDRESS/index.php/login/index/main/list_groups
If you don't have a valid license, you should be able to log in to Open-AudIT at http://IPADDRESS/index.php